Remote Internship Controls Engineer Jobs in Alberta

About the Client

Our client is a globally operated cryptocurrency exchange with 1,000+ employees, offering spot, futures, copy trading, and wealth management products. The team is predominantly Mandarin-speaking and operates fully remote across multiple time zones. The company is rapidly expanding and investing heavily in security infrastructure.

Role Overview

We are looking for a senior AWS Security Specialist to build, maintain, and optimize the security defense system on AWS. This role requires deep expertise in the security architecture of core services such as EKS, VPC, and CloudWatch, as well as strong cross-team collaboration skills. You will serve as the technical bridge between the operations team and the core security department, translating compliance requirements into automated, production-ready technical implementations.

Position: AWS Security Specialist / Senior Cloud Security Engineer Headcount: 1 Location: Fully remote, no timezone restriction Compensation: USD 4,000–6,000/month × 13 months + performance bonus Language: Mandarin communication ability required; English reading/writing proficiency Contract: Permanent, full-time Ideal background: Operations/DevOps engineer transitioning into security

Key Responsibilities

Architecture Security Hardening

• Design and implement defense-in-depth security architecture on AWS
• Manage VPC network security (Security Groups, NACLs, PrivateLink), IAM least-privilege controls, and data encryption schemes

Container & Cluster Security

• Own the security of Amazon EKS, including infrastructure hardening, Network Policies, and IAM Roles for Service Accounts (IRSA) configuration
• Implement container image scanning workflows

Monitoring & Incident Response

• Build real-time monitoring and alerting systems using CloudWatch, CloudTrail, GuardDuty, and Security Hub
• Participate in security incident response

Cross-Team Collaboration

• Act as the technical interface with the core enterprise security team
• Translate abstract security policies (ISO 27001, SOC 2, internal audit requirements) into actionable technical architecture
• Drive remediation of security vulnerabilities

Compliance & Automation

• Champion "Security as Code" practices
• Use Terraform or CloudFormation to ensure infrastructure compliance, enabling automated auditing and remediation

Requirements

Technical Skills

• 3–5+ years of hands-on AWS experience with deep understanding of the AWS Shared Responsibility Model
• Expert-level knowledge of Kubernetes/EKS security operations, including storage security, runtime security, and container network isolation
• Deep understanding of VPC architecture, hybrid cloud connectivity (Transit Gateway, VPN), and CDN/WAF deployment
• Proficient in CloudWatch for log analysis, metric monitoring, and automated alerting
• Proficient in at least one of Python, Go, or Bash for writing automation scripts

Experience & Soft Skills

• Background working with Security/Compliance/Audit teams, ability to translate "compliance language" into "engineering language"
• Ability to independently perform threat modeling and identify potential risks in system architecture
• Strong documentation and cross-department communication skills
• Mandarin communication ability required; English reading/writing proficiency

Nice to Have

• AWS Certified Security - Specialty certification
• CKS (Certified Kubernetes Security Specialist) certification
• DevSecOps implementation experience, familiar with security tool integration in CI/CD pipelines (Snyk, Prisma Cloud, Trivy, etc.)
• Experience with Infrastructure as Code (IaC) tools such as Terraform or AWS CDK
• Crypto exchange or Web3 industry experience
• Operations/DevOps background transitioning into security is preferred